ownCloud Server before 8.1.11, 8.2.x before 8.2.9, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows remote authenticated users to cause a denial of service (server hang and logfile flooding) via a one bit BMP file.
2017-03-03T15:59:01.367
2025-04-20T01:37:25.860
Deferred
CVSSv3.0: 6.5 (MEDIUM)
AV:N/AC:L/Au:S/C:N/I:N/A:P
8.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | owncloud | owncloud | ≤ 8.1.10 | Yes |
| Application | owncloud | owncloud | 8.2.0 | Yes |
| Application | owncloud | owncloud | 8.2.1 | Yes |
| Application | owncloud | owncloud | 8.2.2 | Yes |
| Application | owncloud | owncloud | 8.2.3 | Yes |
| Application | owncloud | owncloud | 8.2.4 | Yes |
| Application | owncloud | owncloud | 8.2.5 | Yes |
| Application | owncloud | owncloud | 8.2.6 | Yes |
| Application | owncloud | owncloud | 8.2.7 | Yes |
| Application | owncloud | owncloud | 8.2.8 | Yes |
| Application | owncloud | owncloud | 9.0.0 | Yes |
| Application | owncloud | owncloud | 9.0.1 | Yes |
| Application | owncloud | owncloud | 9.0.2 | Yes |
| Application | owncloud | owncloud | 9.0.3 | Yes |
| Application | owncloud | owncloud | 9.0.4 | Yes |
| Application | owncloud | owncloud | 9.0.5 | Yes |
| Application | owncloud | owncloud | 9.0.6 | Yes |
| Application | owncloud | owncloud | 9.1.0 | Yes |
| Application | owncloud | owncloud | 9.1.1 | Yes |
| Application | owncloud | owncloud | 9.1.2 | Yes |